Ubuntu Security Notices

Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package. You can find additional guidance for high-profile vulnerabilities in the Ubuntu Vulnerability Knowledge Base section.

To report a security vulnerability in an Ubuntu package, please contact the Security Team.

The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.

Search

Release:

Details contain:

Latest Notices

USN-7408-4: Linux kernel (HWE) vulnerabilities ›

7 April 2025

Several security issues were fixed in the Linux kernel.

CVE-2024-26928 , CVE-2024-56658 , CVE-2024-35864

Ubuntu 18.04 ESM

USN-7408-3: Linux kernel (FIPS) vulnerabilities ›

7 April 2025

Several security issues were fixed in the Linux kernel.

CVE-2024-26928 , CVE-2024-56658 , CVE-2024-35864

Ubuntu 20.04 LTS

USN-7422-1: FIS-GT.M vulnerabilities ›

7 April 2025

Several security issues were fixed in FIS-GT.M.

CVE-2021-44502 , CVE-2021-44510 , CVE-2021-44506 , and 5 others

USN-7421-1: Linux kernel (Azure) vulnerabilities ›

7 April 2025

Several security issues were fixed in the Linux kernel.

CVE-2024-57906 , CVE-2024-43098 , CVE-2024-53120 , and 253 others

Ubuntu 20.04 LTS

USN-7420-1: Linux kernel (Azure) vulnerabilities ›

7 April 2025

Several security issues were fixed in the Linux kernel.

CVE-2024-57798 , CVE-2024-26928 , CVE-2024-42069 , and 2 others

Ubuntu 22.04 LTS

USN-7406-5: Linux kernel (NVIDIA) vulnerabilities ›

7 April 2025

Several security issues were fixed in the Linux kernel.

CVE-2024-57798 , CVE-2024-26928 , CVE-2024-56658 , and 1 other

Ubuntu 22.04 LTS

USN-7418-1: Ruby vulnerabilities ›

7 April 2025

Several security issues were fixed in Ruby.

CVE-2024-35176 , CVE-2024-43398 , CVE-2025-27219 , and 5 others

USN-7419-1: Vim vulnerabilities ›

7 April 2025

Vim could be made to crash if it received specially crafted input.

CVE-2025-26603 , CVE-2025-1215

USN-7410-1: Tomcat vulnerability ›

7 April 2025

Tomcat could be made to consume resources if it received specially crafted network traffic.

USN-6885-4: Apache HTTP Server regression ›

7 April 2025

USN-6885-1 introduced a regression in Apache HTTP Server.

Subscribe

1
2
3
4
5

Subscribe

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading